Conversation

Notices

Embed this notice
:mima_rule: Mima-sama (mima@makai.chaotic.ninja)'s status on Tuesday, 05-Mar-2024 19:28:01 JST :mima_rule: Mima-sama

I've just done a bit more testing, since my friend emma in this Raddle thread was able to confirm in her own #Postmill instance (I've tested against #Raddle too because why not) that it's a caching reverse proxy causing images to stay longer on the server. I'm able to confirm that using a query string bypasses the proxy's cache and results in the expected 404. Hooray, and I couldn't expect any better from Raddle! :ai_yay: They always take #privacy seriously. :alice_wine:

I've used this method against #Mastodon, #Pleroma, and #Misskey. The first two still returns the image I've uploaded even though I've deleted my account AND used a query string to bypass proxy cache (yikes). Misskey forcibly rewrites the URL to strip out the query string, therefore I can't conclude for 100% sure that it's a proxy's fault. But I'm still pretty confident it is the reverse proxy's doing in the case of Misskey due to the observation I mentioned earlier where the generated file URLs that never got accessed don't get cached.

Alright I'm done with this shit, #fediverse devs, do whatever with this info with mind :seija_coffee:

#reverseproxy #fediversemeta

RE: https://makai.chaotic.ninja/notes/9qhpixnwgx
In conversation about 9 months ago from makai.chaotic.ninja permalink
Attachments
1. Domain not in remote thumbnail source whitelist: makai.chaotic.ninja
  
  :mima_rule: Mima-sama (@mima)
  
  Actually I can't really bash #Lemmy for this (as much as I'd want to) because it seems like pretty much the rest of the #fediverse has this problem of images not getting immediately removed from the server when you delete the image or even your account. I've tested with #Mastodon, #Pleroma, and #Misskey (even Misskey somehow gets it wrong by not immediately making your image unavailable by the URL even if you've deleted it from your Drive, however this doesn't always happen, see below). Now I'm not sure about instance admin stuff (and I haven't tested with my admin hat on in this Misskey), but I'm guessing you don't have a view of all uploaded photos by a user that an admin can delete from in Mastodon and Pleroma either (please prove me wrong though!). :sagume_think: Misskey does let you view all files uploaded by a user and delete from there, though I'm not sure if the file gets immediately removed from the server once you hit delete, but it's probably gonna be like what I'm going to write below What I do know about Misskey is that, if you've never accessed the URL generated for the file in your Drive, and hit delete, the next time you access it, it definitely will no longer be available; a pure 404 as expected. However if you've accessed the URL at least once, then the file will get cached. I'm not sure if it's Misskey doing this or the reverse proxy (like #nginx), because clearing cache or switching to a whole 'nother browser still shows the file is available. Oh, and have I mentioned that all three software will automatically put your image into the server the moment you hit the upload button, even if you haven't submitted the post yet? Yeah it's equally as easy as Lemmy to accidentally upload something to those three as well. What a #privacy mess. :seija_coffee: #GDPR #delete #deletion #fediversemeta RN: PSA: you can't delete photos uploaded to #lemmy. So don't (accidentally) upload a nude to lemmy. That would be bad 😱 https://tech.michaelaltfield.net/2024/03/04/lemmy-fediverse-gdpr/ Oh, and if you delete your account? It doesn't delete your uploaded photos. And good luck getting your instance admin to delete it; it requires a manual db query, api call, and — oh, none of this is documented? Welcome to my #fediverse #GDPR nightmare 💣🤯 (📎1)
- Embed this notice
  :blobcathug: (jain@blob.cat)'s status on Tuesday, 05-Mar-2024 19:28:00 JST :blobcathug:
  in reply to
  
  @mima there are multiple ways:
  tbh that could be fixed within *oma since there is a mediaproxy cache blacklist as well as the option to invalidate cache via http or a bash script.
  tbh i didn't have time to set any of that up correctly.
  On the other hand, if you send media through fedi, then the media reached the public internet and deletion from the public internet is impossible anyway, especially for the fediverse by design of the protocol
  
  In conversation about 9 months ago permalink
- Embed this notice
  :blobcathug: (jain@blob.cat)'s status on Tuesday, 05-Mar-2024 19:45:39 JST :blobcathug:
  in reply to
  
  @mima sorry, i guess i wrote it wrong, *oma implemented it already, i just never used/configured it and dont know if it really works that well...
  
  For OP's case i wouldnt have a fear from it since every file is only accessible from a high entropy url which cant be guessed. If that happens within my instance i guess it should be purged within the orphaned object cleaning task or manually if i get asked
  
  In conversation about 9 months ago permalink
- Embed this notice
  :mima_rule: Mima-sama (mima@makai.chaotic.ninja)'s status on Tuesday, 05-Mar-2024 19:45:40 JST :mima_rule: Mima-sama
  in reply to
  - :blobcathug:
  @Jain@blob.cattbh that could be fixed within *oma since there is a mediaproxy cache blacklist as well as the option to invalidate cache via http or a bash script.Interesting. :sagume_think: Hope #Pleroma and #Akkoma consider those approaches. :cirno_fumo_yes:On the other hand, if you send media through fedi, then the media reached the public internet and deletion from the public internet is impossible anyway, especially for the fediverse by design of the protocolThe case of the OP is that the post (and therefore attached media as well) haven't even been queued up for federation yet because it's not yet submitted, yet the attachments get immediately uploaded to the home instance anyway, and this can be a problem if you've accidentally misclicked or touched a way too sensitive file while in the upload form.
  
  In conversation about 9 months ago permalink

Public

Conversation

Notices

Feeds